xref: /freebsd/libexec/ypxfr/ypxfr_main.c (revision 9336e0699bda8a301cd2bfa37106b6ec5e32012e) 
1 /*
2  * Copyright (c) 1995
3  *	Bill Paul <wpaul@ctr.columbia.edu>.  All rights reserved.
4  *
5  * Redistribution and use in source and binary forms, with or without
6  * modification, are permitted provided that the following conditions
7  * are met:
8  * 1. Redistributions of source code must retain the above copyright
9  *    notice, this list of conditions and the following disclaimer.
10  * 2. Redistributions in binary form must reproduce the above copyright
11  *    notice, this list of conditions and the following disclaimer in the
12  *    documentation and/or other materials provided with the distribution.
13  * 3. All advertising materials mentioning features or use of this software
14  *    must display the following acknowledgement:
15  *	This product includes software developed by Bill Paul.
16  * 4. Neither the name of the author nor the names of any co-contributors
17  *    may be used to endorse or promote products derived from this software
18  *    without specific prior written permission.
19  *
20  * THIS SOFTWARE IS PROVIDED BY Bill Paul AND CONTRIBUTORS ``AS IS'' AND
21  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
22  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
23  * ARE DISCLAIMED.  IN NO EVENT SHALL Bill Paul OR CONTRIBUTORS BE LIABLE
24  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
25  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
26  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
27  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
28  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
29  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
30  * SUCH DAMAGE.
31  */
32 
33 #include <sys/cdefs.h>
34 __FBSDID("$FreeBSD$");
35 
36 #include <errno.h>
37 #include <stdio.h>
38 #include <stdlib.h>
39 #include <string.h>
40 #include <syslog.h>
41 #include <unistd.h>
42 #include <sys/types.h>
43 #include <sys/param.h>
44 #include <sys/socket.h>
45 #include <netinet/in.h>
46 #include <arpa/inet.h>
47 #include <rpc/rpc.h>
48 #include <rpc/clnt.h>
49 #include <rpcsvc/yp.h>
50 #include <rpcsvc/ypclnt.h>
51 #include <rpcsvc/ypxfrd.h>
52 #include "ypxfr_extern.h"
53 
54 char *progname = "ypxfr";
55 char *yp_dir = _PATH_YP;
56 int _rpcpmstart = 0;
57 int ypxfr_use_yplib = 0; /* Assume the worst. */
58 int ypxfr_clear = 1;
59 int ypxfr_prognum = 0;
60 struct sockaddr_in ypxfr_callback_addr;
61 struct yppushresp_xfr ypxfr_resp;
62 DB *dbp;
63 
64 static void
65 ypxfr_exit(ypxfrstat retval, char *temp)
66 {
67 	CLIENT *clnt;
68 	int sock = RPC_ANYSOCK;
69 	struct timeval timeout;
70 
71 	/* Clean up no matter what happened previously. */
72 	if (temp != NULL) {
73 		if (dbp != NULL)
74 			(void)(dbp->close)(dbp);
75 		if (unlink(temp) == -1) {
76 			yp_error("failed to unlink %s",strerror(errno));
77 		}
78 	}
79 
80 	if (ypxfr_prognum) {
81 		timeout.tv_sec = 20;
82 		timeout.tv_usec = 0;
83 
84 		if ((clnt = clntudp_create(&ypxfr_callback_addr, ypxfr_prognum,
85 					1, timeout, &sock)) == NULL) {
86 			yp_error("%s", clnt_spcreateerror("failed to "
87 			    "establish callback handle"));
88 			exit(1);
89 		}
90 
91 		ypxfr_resp.status = retval;
92 
93 		if (yppushproc_xfrresp_1(&ypxfr_resp, clnt) == NULL) {
94 			yp_error("%s", clnt_sperror(clnt, "callback failed"));
95 			clnt_destroy(clnt);
96 			exit(1);
97 		}
98 		clnt_destroy(clnt);
99 	} else {
100 		yp_error("Exiting: %s", ypxfrerr_string(retval));
101 	}
102 
103 	exit(0);
104 }
105 
106 static void
107 usage(void)
108 {
109 	if (_rpcpmstart) {
110 		ypxfr_exit(YPXFR_BADARGS,NULL);
111 	} else {
112 		fprintf(stderr, "%s\n%s\n%s\n",
113 	"usage: ypxfr [-f] [-c] [-d target domain] [-h source host]",
114 	"             [-s source domain] [-p path]",
115 	"             [-C taskid program-number ipaddr port] mapname");
116 		exit(1);
117 	}
118 }
119 
120 int
121 ypxfr_foreach(int status, char *key, int keylen, char *val, int vallen,
122     char *data)
123 {
124 	DBT dbkey, dbval;
125 
126 	if (status != YP_TRUE)
127 		return (status);
128 
129 	/*
130 	 * XXX Do not attempt to write zero-length keys or
131 	 * data into a Berkeley DB hash database. It causes a
132 	 * strange failure mode where sequential searches get
133 	 * caught in an infinite loop.
134 	 */
135 	if (keylen) {
136 		dbkey.data = key;
137 		dbkey.size = keylen;
138 	} else {
139 		dbkey.data = "";
140 		dbkey.size = 1;
141 	}
142 	if (vallen) {
143 		dbval.data = val;
144 		dbval.size = vallen;
145 	} else {
146 		dbval.data = "";
147 		dbval.size = 1;
148 	}
149 
150 	if (yp_put_record(dbp, &dbkey, &dbval, 0) != YP_TRUE)
151 		return(yp_errno);
152 
153 	return (0);
154 }
155 
156 int
157 main(int argc, char *argv[])
158 {
159 	int ch;
160 	int ypxfr_force = 0;
161 	char *ypxfr_dest_domain = NULL;
162 	char *ypxfr_source_host = NULL;
163 	char *ypxfr_source_domain = NULL;
164 	char *ypxfr_local_domain = NULL;
165 	char *ypxfr_master = NULL;
166 	unsigned long ypxfr_order = -1, ypxfr_skew_check = -1;
167 	char *ypxfr_mapname = NULL;
168 	int ypxfr_args = 0;
169 	char ypxfr_temp_map[MAXPATHLEN + 2];
170 	char tempmap[MAXPATHLEN + 2];
171 	char buf[MAXPATHLEN + 2];
172 	DBT key, data;
173 	int remoteport;
174 	int interdom = 0;
175 	int secure = 0;
176 
177 	debug = 1;
178 
179 	if (!isatty(fileno(stderr))) {
180 		openlog("ypxfr", LOG_PID, LOG_DAEMON);
181 		_rpcpmstart = 1;
182 	}
183 
184 	if (argc < 2)
185 		usage();
186 
187 	while ((ch = getopt(argc, argv, "fcd:h:s:p:C:")) != -1) {
188 		int my_optind;
189 		switch (ch) {
190 		case 'f':
191 			ypxfr_force++;
192 			ypxfr_args++;
193 			break;
194 		case 'c':
195 			ypxfr_clear = 0;
196 			ypxfr_args++;
197 			break;
198 		case 'd':
199 			ypxfr_dest_domain = optarg;
200 			ypxfr_args += 2;
201 			break;
202 		case 'h':
203 			ypxfr_source_host = optarg;
204 			ypxfr_args += 2;
205 			break;
206 		case 's':
207 			ypxfr_source_domain = optarg;
208 			ypxfr_args += 2;
209 			break;
210 		case 'p':
211 			yp_dir = optarg;
212 			ypxfr_args += 2;
213 			break;
214 		case 'C':
215 			/*
216 			 * Whoever decided that the -C flag should take
217 			 * four arguments is a twit.
218 			 */
219 			my_optind = optind - 1;
220 			if (argv[my_optind] == NULL || !strlen(argv[my_optind])) {
221 				yp_error("transaction ID not specified");
222 				usage();
223 			}
224 			ypxfr_resp.transid = atol(argv[my_optind]);
225 			my_optind++;
226 			if (argv[my_optind] == NULL || !strlen(argv[my_optind])) {
227 				yp_error("RPC program number not specified");
228 				usage();
229 			}
230 			ypxfr_prognum = atol(argv[my_optind]);
231 			my_optind++;
232 			if (argv[my_optind] == NULL || !strlen(argv[my_optind])) {
233 				yp_error("address not specified");
234 				usage();
235 			}
236 			if (!inet_aton(argv[my_optind], &ypxfr_callback_addr.sin_addr)) {
237 				yp_error("failed to convert '%s' to IP addr",
238 					argv[my_optind]);
239 				exit(1);
240 			}
241 			my_optind++;
242 			if (argv[my_optind] == NULL || !strlen(argv[my_optind])) {
243 				yp_error("port not specified");
244 				usage();
245 			}
246 			ypxfr_callback_addr.sin_port = htons((u_short)atoi(argv[my_optind]));
247 			ypxfr_args += 5;
248 			break;
249 		default:
250 			usage();
251 			break;
252 		}
253 	}
254 
255 	ypxfr_mapname = argv[ypxfr_args + 1];
256 
257 	if (ypxfr_mapname == NULL) {
258 		yp_error("no map name specified");
259 		usage();
260 	}
261 
262 	/* Always the case. */
263 	ypxfr_callback_addr.sin_family = AF_INET;
264 
265 	/* Determine if local NIS client facilities are turned on. */
266 	if (!yp_get_default_domain(&ypxfr_local_domain) &&
267 	    _yp_check(&ypxfr_local_domain))
268 		ypxfr_use_yplib = 1;
269 
270 	/*
271 	 * If no destination domain is specified, assume that the
272 	 * local default domain is to be used and try to obtain it.
273 	 * Fails if NIS client facilities are turned off.
274 	 */
275 	if (ypxfr_dest_domain == NULL) {
276 		if (ypxfr_use_yplib) {
277 			yp_get_default_domain(&ypxfr_dest_domain);
278 		} else {
279 			yp_error("no destination domain specified and \
280 the local domain name isn't set");
281 			ypxfr_exit(YPXFR_BADARGS,NULL);
282 		}
283 	}
284 
285 	/*
286 	 * If a source domain is not specified, assume it to
287 	 * be the same as the destination domain.
288 	 */
289 	if (ypxfr_source_domain == NULL) {
290 		ypxfr_source_domain = ypxfr_dest_domain;
291 	}
292 
293 	/*
294 	 * If the source host is not specified, assume it to be the
295 	 * master for the specified map. If local NIS client facilities
296 	 * are turned on, we can figure this out using yp_master().
297 	 * If not, we have to see if a local copy of the map exists
298 	 * and extract its YP_MASTER_NAME record. If _that_ fails,
299 	 * we are stuck and must ask the user for more information.
300 	 */
301 	if (ypxfr_source_host == NULL) {
302 		if (!ypxfr_use_yplib) {
303 		/*
304 		 * Double whammy: NIS isn't turned on and the user
305 		 * didn't specify a source host.
306 		 */
307 			char *dptr;
308 			key.data = "YP_MASTER_NAME";
309 			key.size = sizeof("YP_MASTER_NAME") - 1;
310 
311 			if (yp_get_record(ypxfr_dest_domain, ypxfr_mapname,
312 					 &key, &data, 1) != YP_TRUE) {
313 				yp_error("no source host specified");
314 				ypxfr_exit(YPXFR_BADARGS,NULL);
315 			}
316 			dptr = data.data;
317 			dptr[data.size] = '\0';
318 			ypxfr_master = ypxfr_source_host = strdup(dptr);
319 		}
320 	} else {
321 		if (ypxfr_use_yplib)
322 			ypxfr_use_yplib = 0;
323 	}
324 
325 	if (ypxfr_master == NULL) {
326 		if ((ypxfr_master = ypxfr_get_master(ypxfr_source_domain,
327 					    	 ypxfr_mapname,
328 					     	ypxfr_source_host,
329 					     	ypxfr_use_yplib)) == NULL) {
330 			yp_error("failed to find master of %s in domain %s: %s",
331 				  ypxfr_mapname, ypxfr_source_domain,
332 				  ypxfrerr_string(yp_errno));
333 			ypxfr_exit(YPXFR_MADDR,NULL);
334 		}
335 	}
336 
337 	/*
338 	 * If we got here and ypxfr_source_host is still undefined,
339 	 * it means we had to resort to using yp_master() to find the
340 	 * master server for the map. The source host and master should
341 	 * be identical.
342 	 */
343 	if (ypxfr_source_host == NULL)
344 		ypxfr_source_host = ypxfr_master;
345 
346 	/*
347 	 * Don't talk to ypservs on unprivileged ports.
348 	 */
349 	remoteport = getrpcport(ypxfr_source_host, YPPROG, YPVERS, IPPROTO_UDP);
350 	if (remoteport >= IPPORT_RESERVED) {
351 		yp_error("ypserv on %s not running on reserved port",
352 						ypxfr_source_host);
353 		ypxfr_exit(YPXFR_REFUSED, NULL);
354 	}
355 
356 	if ((ypxfr_order = ypxfr_get_order(ypxfr_source_domain,
357 					     ypxfr_mapname,
358 					     ypxfr_master, 0)) == 0) {
359 		yp_error("failed to get order number of %s: %s",
360 				ypxfr_mapname, yp_errno == YPXFR_SUCC ?
361 				"map has order 0" : ypxfrerr_string(yp_errno));
362 		ypxfr_exit(YPXFR_YPERR,NULL);
363 	}
364 
365 	if (ypxfr_match(ypxfr_master, ypxfr_source_domain, ypxfr_mapname,
366 			"YP_INTERDOMAIN", sizeof("YP_INTERDOMAIN") - 1))
367 		interdom++;
368 
369 	if (ypxfr_match(ypxfr_master, ypxfr_source_domain, ypxfr_mapname,
370 			"YP_SECURE", sizeof("YP_SECURE") - 1))
371 		secure++;
372 
373 	key.data = "YP_LAST_MODIFIED";
374 	key.size = sizeof("YP_LAST_MODIFIED") - 1;
375 
376 	/* The order number is immaterial when the 'force' flag is set. */
377 
378 	if (!ypxfr_force) {
379 		int ignore = 0;
380 		if (yp_get_record(ypxfr_dest_domain,ypxfr_mapname,&key,&data,1) != YP_TRUE) {
381 			switch (yp_errno) {
382 			case YP_NOKEY:
383 				ypxfr_exit(YPXFR_FORCE,NULL);
384 				break;
385 			case YP_NOMAP:
386 				/*
387 				 * If the map doesn't exist, we're
388 				 * creating it. Ignore the error.
389 				 */
390 				ignore++;
391 				break;
392 			case YP_BADDB:
393 			default:
394 				ypxfr_exit(YPXFR_DBM,NULL);
395 				break;
396 			}
397 		}
398 		if (!ignore && ypxfr_order <= atoi(data.data))
399 			ypxfr_exit(YPXFR_AGE, NULL);
400 
401 	}
402 
403 	/* Construct a temporary map file name */
404 	snprintf(tempmap, sizeof(tempmap), "%s.%d",ypxfr_mapname, getpid());
405 	snprintf(ypxfr_temp_map, sizeof(ypxfr_temp_map), "%s/%s/%s", yp_dir,
406 		 ypxfr_dest_domain, tempmap);
407 
408 	if ((remoteport = getrpcport(ypxfr_source_host, YPXFRD_FREEBSD_PROG,
409 					YPXFRD_FREEBSD_VERS, IPPROTO_TCP))) {
410 
411 		/* Don't talk to rpc.ypxfrds on unprovileged ports. */
412 		if (remoteport >= IPPORT_RESERVED) {
413 			yp_error("rpc.ypxfrd on %s not using privileged port",
414 							ypxfr_source_host);
415 			ypxfr_exit(YPXFR_REFUSED, NULL);
416 		}
417 
418 		/* Try to send using ypxfrd. If it fails, use old method. */
419 		if (!ypxfrd_get_map(ypxfr_source_host, ypxfr_mapname,
420 					ypxfr_source_domain, ypxfr_temp_map))
421 			goto leave;
422 	}
423 
424 	/* Open the temporary map read/write. */
425 	if ((dbp = yp_open_db_rw(ypxfr_dest_domain, tempmap, 0)) == NULL) {
426 		yp_error("failed to open temporary map file");
427 		ypxfr_exit(YPXFR_DBM,NULL);
428 	}
429 
430 	/*
431 	 * Fill in the keys we already know, such as the order number,
432 	 * master name, input file name (we actually make up a bogus
433 	 * name for that) and output file name.
434 	 */
435 	snprintf(buf, sizeof(buf), "%lu", ypxfr_order);
436 	data.data = buf;
437 	data.size = strlen(buf);
438 
439 	if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) {
440 		yp_error("failed to write order number to database");
441 		ypxfr_exit(YPXFR_DBM,ypxfr_temp_map);
442 	}
443 
444 	key.data = "YP_MASTER_NAME";
445 	key.size = sizeof("YP_MASTER_NAME") - 1;
446 	data.data = ypxfr_master;
447 	data.size = strlen(ypxfr_master);
448 
449 	if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) {
450 		yp_error("failed to write master name to database");
451 		ypxfr_exit(YPXFR_DBM,ypxfr_temp_map);
452 	}
453 
454 	key.data = "YP_DOMAIN_NAME";
455 	key.size = sizeof("YP_DOMAIN_NAME") - 1;
456 	data.data = ypxfr_dest_domain;
457 	data.size = strlen(ypxfr_dest_domain);
458 
459 	if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) {
460 		yp_error("failed to write domain name to database");
461 		ypxfr_exit(YPXFR_DBM,ypxfr_temp_map);
462 	}
463 
464 	snprintf (buf, sizeof(buf), "%s:%s", ypxfr_source_host, ypxfr_mapname);
465 
466 	key.data = "YP_INPUT_NAME";
467 	key.size = sizeof("YP_INPUT_NAME") - 1;
468 	data.data = &buf;
469 	data.size = strlen(buf);
470 
471 	if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) {
472 		yp_error("failed to write input name to database");
473 		ypxfr_exit(YPXFR_DBM,ypxfr_temp_map);
474 
475 	}
476 
477 	snprintf(buf, sizeof(buf), "%s/%s/%s", yp_dir, ypxfr_dest_domain,
478 							ypxfr_mapname);
479 
480 	key.data = "YP_OUTPUT_NAME";
481 	key.size = sizeof("YP_OUTPUT_NAME") - 1;
482 	data.data = &buf;
483 	data.size = strlen(buf);
484 
485 	if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) {
486 		yp_error("failed to write output name to database");
487 		ypxfr_exit(YPXFR_DBM,ypxfr_temp_map);
488 	}
489 
490 	if (interdom) {
491 		key.data = "YP_INTERDOMAIN";
492 		key.size = sizeof("YP_INTERDOMAIN") - 1;
493 		data.data = "";
494 		data.size = 0;
495 
496 		if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) {
497 			yp_error("failed to add interdomain flag to database");
498 			ypxfr_exit(YPXFR_DBM,ypxfr_temp_map);
499 		}
500 	}
501 
502 	if (secure) {
503 		key.data = "YP_SECURE";
504 		key.size = sizeof("YP_SECURE") - 1;
505 		data.data = "";
506 		data.size = 0;
507 
508 		if (yp_put_record(dbp, &key, &data, 0) != YP_TRUE) {
509 			yp_error("failed to add secure flag to database");
510 			ypxfr_exit(YPXFR_DBM,ypxfr_temp_map);
511 		}
512 	}
513 
514 	/* Now suck over the contents of the map from the master. */
515 
516 	if (ypxfr_get_map(ypxfr_mapname,ypxfr_source_domain,
517 			  ypxfr_source_host, ypxfr_foreach)){
518 		yp_error("failed to retrieve map from source host");
519 		ypxfr_exit(YPXFR_YPERR,ypxfr_temp_map);
520 	}
521 
522 	(void)(dbp->close)(dbp);
523 	dbp = NULL; /* <- yes, it seems this is necessary. */
524 
525 leave:
526 
527 	snprintf(buf, sizeof(buf), "%s/%s/%s", yp_dir, ypxfr_dest_domain,
528 							ypxfr_mapname);
529 
530 	/* Peek at the order number again and check for skew. */
531 	if ((ypxfr_skew_check = ypxfr_get_order(ypxfr_source_domain,
532 					     ypxfr_mapname,
533 					     ypxfr_master, 0)) == 0) {
534 		yp_error("failed to get order number of %s: %s",
535 				ypxfr_mapname, yp_errno == YPXFR_SUCC ?
536 				"map has order 0" : ypxfrerr_string(yp_errno));
537 		ypxfr_exit(YPXFR_YPERR,ypxfr_temp_map);
538 	}
539 
540 	if (ypxfr_order != ypxfr_skew_check)
541 		ypxfr_exit(YPXFR_SKEW,ypxfr_temp_map);
542 
543 	/*
544 	 * Send a YPPROC_CLEAR to the local ypserv.
545 	 */
546 	if (ypxfr_clear) {
547 		char in = 0;
548 		char *out = NULL;
549 		int stat;
550 		if ((stat = callrpc("localhost",YPPROG,YPVERS,YPPROC_CLEAR,
551 			(xdrproc_t)xdr_void, (void *)&in,
552 			(xdrproc_t)xdr_void, (void *)out)) != RPC_SUCCESS) {
553 			yp_error("failed to send 'clear' to local ypserv: %s",
554 				 clnt_sperrno((enum clnt_stat) stat));
555 			ypxfr_exit(YPXFR_CLEAR, ypxfr_temp_map);
556 		}
557 	}
558 
559 	/*
560 	 * Put the new map in place immediately. I'm not sure if the
561 	 * kernel does an unlink() and rename() atomically in the event
562 	 * that we move a new copy of a map over the top of an existing
563 	 * one, but there's less chance of a race condition happening
564 	 * than if we were to do the unlink() ourselves.
565 	 */
566 	if (rename(ypxfr_temp_map, buf) == -1) {
567 		yp_error("rename(%s,%s) failed: %s", ypxfr_temp_map, buf,
568 							strerror(errno));
569 		ypxfr_exit(YPXFR_FILE,NULL);
570 	}
571 
572 	ypxfr_exit(YPXFR_SUCC,NULL);
573 
574 	return(1);
575 }
576